Overview

This guide creates a SAML 2.0 app integration in Okta and connects it to SDS Manager - Inventory.

Prerequisites

• You have Okta Admin access.
• You have SDS Manager admin access to configure SSO in SDS Manager.

A) Configure Okta (Identity Provider)

1) Create a new SAML app integration

1. In Okta Admin Console go to Applications → Applications → Create App Integration.
2. Choose SAML 2.0.

2) General Settings

1. Enter an App name (optionally upload a logo).
2. Click Next.

3) Configure SAML (initial pass)

• Single sign-on URL: https://inventory.sdsmanager.com/saml2_auth/acs/
• Audience URI (SP Entity ID): temporary value (you will update this after Okta generates the App ID)
• Default RelayState: http://inventory.sdsmanager.com/sso-login/
• Name ID format: EmailAddress
• Application username: Email (usually)

Click Next.

4) Feedback

• Select This is an internal app that we have created.
• Click Finish.

B) Get the Okta App ID and update the Audience URI

5) Copy the Okta App ID from Metadata URL

1. Open the new app in Okta.
2. Go to Sign On and find Metadata URL (or “View SAML setup instructions”).
3. Copy the ID between /app/ and /sso/.

Example Metadata URL:

• https://<yourOktaDomain>/app/exk10gdvzhvZbcyl2698/sso/saml/metadata
• App ID = exk10gdvzhvZbcyl2698

6) Update Audience URI (SP Entity ID)

1. Go to General → SAML Settings → Edit (or Sign On → Edit SAML settings).

1. Continue to Configure SAML.
2. Set:

• Audience URI (SP Entity ID): spn:<OktaAppId>

Example:

• spn:exk10gdvzhvZbcyl2698

Save.

C) Add attribute statements (required)

In the app’s SAML settings, add these Attribute Statements:

• emailAddress = user.profile.email

D) Configure SDS Manager

In SDS Manager → Settings → Single Sign-On (SSO), enter the IdP details from Okta (Issuer/SSO URL/Certificate) and save.